$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: w9RGJUYHies59171NGECW/4sZ1MiqxHl+taLI4GsS9o= Subject key identifier: 8F:C9:A3:A6:83:55:31:D1:34:20:FD:DF:F3:20:08:A1:FA:05:8E:2E Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01F2 Signing time: Wed 25 Mar 2026 02:57:21 +0000 Manifest this update: Wed 25 Mar 2026 02:57:20 +0000 Manifest next update: Wed 01 Apr 2026 02:57:20 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: Xe7Pp3oDPC5LunUsuZ/Q8c++ZVg5Cjgnn0lED+4Jeqs=) 2: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: r/B/wTWM1e+RbFQV+OxoufBd8XhZQMs6+SrSBQGZEm0=) 3: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: CKjWrRKFrq5wIXerALs28X5SJv1uenx7ZdloeFQoUHo=) 4: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: sT56QjRFMA5RYNrfwK84aeqd2CWRIQx/z7cMGwk6r48=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: kvLOqAvejoloIcBp8iOod+XLqcMm6Km2ICEQUCNEODY=) 6: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: d0JlKivvI0UuN/+g7FjPgsMv6qjwloa3O1BziCQ3cTE=) 7: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: yxoJxjt522RCtypxdpCWh8Ki8MQz+o9DlkQu175uTk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Mar 25 02:57:20 2026 GMT Not After : Apr 1 02:57:20 2026 GMT Subject: CN=69c34f11-3533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f7:a4:1d:52:36:67:4f:d5:28:03:34:95:d5: 7a:1d:08:da:7f:17:d7:28:1b:dd:36:48:b3:e7:06: 4e:db:36:a5:92:e7:dd:c6:c2:d9:9f:a0:b6:4a:86: 03:8c:34:6d:e6:29:03:aa:78:c2:db:38:e2:80:d4: 10:71:ab:b0:dd:a4:bd:06:86:1d:f7:83:1e:15:af: e2:f7:1a:6e:c6:b8:c2:c0:94:e2:65:5d:ea:f6:ee: 19:6f:24:b7:2c:a7:cf:1d:e0:f3:d3:70:34:14:a6: be:9a:69:97:ee:92:bb:55:36:a4:e1:74:2e:a1:25: 9d:0e:fb:a2:4c:a8:6d:38:a2:44:2d:0a:5e:ab:65: 09:c1:6a:81:0e:ac:56:2b:64:87:78:50:0f:99:b8: 79:b3:c8:d8:5a:72:2d:3a:34:8c:f5:fb:c1:70:a0: 21:4f:42:eb:c6:d0:71:8d:8f:26:3f:ad:73:56:ce: 8d:fe:84:6e:91:35:cf:cc:a4:40:fd:62:c0:89:e1: a1:37:6b:62:1f:ba:b9:8c:bb:55:23:1e:4e:e7:12: 5d:02:f1:d1:bd:8c:ea:a5:39:9f:ef:47:0d:a1:3e: 3a:17:7c:8d:37:c2:70:3a:9c:c5:a2:93:6a:55:9f: dc:0a:f8:10:04:41:90:ba:df:a8:26:9e:d9:a7:1b: ad:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C9:A3:A6:83:55:31:D1:34:20:FD:DF:F3:20:08:A1:FA:05:8E:2E X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:88:13:3c:92:9f:51:87:35:77:8e:93:dd:f3:0c:e0:82:cf: b6:17:74:6f:e5:6c:37:d7:ab:03:00:3c:99:87:1b:68:08:e9: c1:91:1e:72:e3:e3:74:b8:a1:97:48:9b:e9:34:ac:c6:12:49: d9:64:09:e9:4e:60:0d:83:a3:0f:b6:93:ed:ff:be:ab:ec:ed: e8:b5:41:e9:ab:58:82:d7:4d:37:af:b0:ba:0f:9c:28:41:a9: d5:70:4b:34:ff:19:85:1d:80:2d:81:94:7e:77:8e:69:8a:96: b3:ea:f2:3c:cf:12:50:b3:8e:e4:68:ac:e9:12:7e:72:c3:9d: 21:49:ff:5c:a1:50:18:8b:c9:07:7d:b6:83:df:2d:ae:33:36: 60:59:4f:5b:d1:da:72:60:18:b8:a5:a6:d8:58:3f:42:74:a7: 36:a1:23:2e:bd:fb:5d:b9:dc:2f:02:bf:57:90:db:b7:f4:bc: 6d:88:aa:37:a6:58:ca:a0:19:ab:16:94:fd:c1:f2:66:f0:fe: 34:77:43:f2:e1:8e:79:c3:b8:b8:44:c7:e4:d1:10:c1:23:21: 77:17:ba:1b:5d:d6:0e:30:62:e6:5e:f8:21:b2:f7:c5:c3:b8: cb:b3:ed:53:38:91:0a:78:dd:ef:d1:97:8a:27:4d:b9:6d:78: 7b:38:cf:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjYwMzI1MDI1NzIwWhcNMjYwNDAxMDI1NzIwWjAYMRYwFAYD VQQDEw02OWMzNGYxMS0zNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fekHVI2Z0/VKAM0ldV6HQjafxfXKBvdNkiz5wZO2zalkufdxsLZn6C2SoYD jDRt5ikDqnjC2zjigNQQcauw3aS9BoYd94MeFa/i9xpuxrjCwJTiZV3q9u4ZbyS3 LKfPHeDz03A0FKa+mmmX7pK7VTak4XQuoSWdDvuiTKhtOKJELQpeq2UJwWqBDqxW K2SHeFAPmbh5s8jYWnItOjSM9fvBcKAhT0LrxtBxjY8mP61zVs6N/oRukTXPzKRA /WLAieGhN2tiH7q5jLtVIx5O5xJdAvHRvYzqpTmf70cNoT46F3yNN8JwOpzFopNq VZ/cCvgQBEGQut+oJp7Zpxut0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI/Jo6aD VTHRNCD93/MgCKH6BY4uMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADYgTPJKfUYc1d46T3fMM4ILPthd0b+VsN9erAwA8mYcbaAjpwZEecuPjdLih l0ib6TSsxhJJ2WQJ6U5gDYOjD7aT7f++q+zt6LVB6atYgtdNN6+wug+cKEGp1XBL NP8ZhR2ALYGUfneOaYqWs+ryPM8SULOO5Gis6RJ+csOdIUn/XKFQGIvJB322g98t rjM2YFlPW9HacmAYuKWm2Fg/QnSnNqEjLr37XbncLwK/V5Dbt/S8bYiqN6ZYyqAZ qxaU/cHyZvD+NHdD8uGOecO4uETH5NEQwSMhdxe6G13WDjBi5l74IbL3xcO4y7Pt UziRCnjd79GXiidNuW14ezjPXA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:29:39 2026 by rpki-client